Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
618
Views
20
Helpful
5
Replies

Enabling portfast

nygenxny123
Level 1
Level 1

‎05-19-2008 05:54 PM - edited ‎03-05-2019 11:05 PM

We have dhcp configure on our routers,

however it takes sometime for hosts

to get an IP address. And sometimes they

get a 169. address, which leads to troubleshooting the physical layer connection.

I would like to configure portfast on all

host ports, however-there are rouge

hubs and netgear switches on the floor.

If I configure bpdu guard, will this

still allow me to configure porfast?

Labels:
0 Helpful
5 Replies 5

Edison Ortiz
Hall of Fame
Hall of Fame

‎05-19-2008 07:49 PM

You can configure bpduguard along with portfast, however if the Netgear switches do not send BPDUs, enabling bpduguard will not help preventing a loop.

I suggest enabling portfast in all host ports and also implement port-security with a limit of 1 per port, in order to prevent those rouge hubs and switches.

HTH,

__

Edison.

joseph.derrick
Level 1
Level 1

‎05-19-2008 10:05 PM

It is highly recommended to configure portfast on access ports to put the port in forwarding state automatically without going through the other states.

On the other hand, you can still configure portfast along with bpduguard. Bpduguard tells the access port not to receive BPDUs so it's basically ok.

Please rate if it helps.

Thanks,

Deejay

nygenxny123
Level 1
Level 1
In response to joseph.derrick

‎05-20-2008 07:20 AM

so if the hub/switch on the floor is not sending a bpdu...there is no chance of this causing a loop..right?

0 Helpful

mattcalderon
Level 4
Level 4
In response to nygenxny123

‎05-20-2008 07:32 AM

As edison stated above if those devices do not send a BPDU, then you can not prevent them from forming a loop. So yes there IS a chance of a loop being formed. If the device does not send a BPDU, then it just means it is not participating in spanning tree.

Edison Ortiz
Hall of Fame
Hall of Fame
In response to nygenxny123

‎05-20-2008 07:32 AM

BPDU is not what causes a loop.

A loop is caused if the switch learns a group of MAC Addresses via one switchport (a switchport connection from a hub) and the same group of MAC Address via another switchport (the same hub connecting to the same switch).

The switch won't be able to determine which is the correct egress port hence causing the loop.

In a switched network, when you have multiple inter-switch links you have 2 options:

1) Configure Etherchanneling

2) Sacrifice one of those links. The Spanning-Tree Protocol will place one of those inter-switch links in blocking mode. STP learns about those inter-switch links by receiving BPDUs.

Thus, BPDU contributes on the loop prevention mechanism and having hubs and switches that do not send BPDU in your switched network, can increase the risk of a loop.

HTH,

__

Edison.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card